From 1a9b1fcb5488658c2525bb263be71f5e72778e2d Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Mon, 16 Feb 2026 02:22:38 +0000 Subject: [PATCH] fix: packages/react-scripts/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AJV-15274295 --- packages/react-scripts/package.json | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/packages/react-scripts/package.json b/packages/react-scripts/package.json index 519d60eceba..10ecd069449 100644 --- a/packages/react-scripts/package.json +++ b/packages/react-scripts/package.json @@ -29,7 +29,7 @@ "types": "./lib/react-app.d.ts", "dependencies": { "@babel/core": "7.12.3", - "@pmmmwh/react-refresh-webpack-plugin": "0.4.3", + "@pmmmwh/react-refresh-webpack-plugin": "0.5.15", "@svgr/webpack": "5.5.0", "@typescript-eslint/eslint-plugin": "^4.5.0", "@typescript-eslint/parser": "^4.5.0", @@ -53,7 +53,7 @@ "eslint-plugin-react": "^7.21.5", "eslint-plugin-react-hooks": "^4.2.0", "eslint-plugin-testing-library": "^3.9.2", - "eslint-webpack-plugin": "^2.5.2", + "eslint-webpack-plugin": "^3.2.0", "file-loader": "6.1.1", "fs-extra": "^9.0.1", "html-webpack-plugin": "4.5.0", @@ -62,7 +62,7 @@ "jest-circus": "26.6.0", "jest-resolve": "26.6.0", "jest-watch-typeahead": "0.6.1", - "mini-css-extract-plugin": "0.11.3", + "mini-css-extract-plugin": "2.4.5", "optimize-css-assets-webpack-plugin": "5.0.4", "pnp-webpack-plugin": "1.6.4", "postcss-flexbugs-fixes": "4.2.1", @@ -79,11 +79,11 @@ "sass-loader": "^10.0.5", "semver": "7.3.2", "style-loader": "1.3.0", - "terser-webpack-plugin": "4.2.3", + "terser-webpack-plugin": "5.3.11", "ts-pnp": "1.2.0", "url-loader": "4.1.1", - "webpack": "4.44.2", - "webpack-dev-server": "3.11.1", + "webpack": "5.98.0", + "webpack-dev-server": "4.6.0", "webpack-manifest-plugin": "2.2.0", "workbox-webpack-plugin": "5.1.4" },